Dome9 Security adds capabilities in the Dome9 Compliance Engine that extend the platform’s automation capabilities to provide active remediation. Using the extended functionality, users can accelerate the resolution of dangerous misconfigurations and minimize the window of vulnerability in their public cloud environments.
The Dome9 Compliance Engine offers comprehensive automation to quickly assess the security and compliance posture of cloud environments and identify risks and gaps such as overly permissive security rules and weak passwords. The unique open-source CloudBots framework extends the engine to bring the power of automation to the entire compliance management lifecycle while still giving security operations teams complete control and flexibility over what actions are taken in their cloud environment.
CloudBots is a server-less framework that can be deployed with a single click. A cloud security administrator can configure the engine to automatically trigger a remediation function when a check associated with a compliance control or security best practice fails. The function, called a CloudBot, is run entirely within the customer’s environment, eliminating the need to grant third party access to sensitive services and permissions. Dome9 has created an open-source GitHub repository for the community to build a library of CloudBots that represent remediation best practices.